Sas solution to automatically control data footprint

ABSTRACT

Systems and methods of automatically controlling a user&#39;s data footprint are provided. Data associated with a user may be analyzed to determine an action the user is preparing to take. Based on the analysis, a potential risk associated with the action the user is preparing to take may be identified. The potential risk associated with the action the user is preparing to take may be, for example, a data security risk, a data privacy risk, a physical risk, a risk of damage to property, and/or a financial risk. A notification indicating the potential risk associated with the action the user is preparing to take may be provided to the user. The notification may include one or more suggestions for mitigating the potential risk associated with the action the user is preparing to take.

FIELD OF THE DISCLOSURE

The present disclosure generally relates to data privacy and, moreparticularly, to an SAS solution to automatically control a user's datafootprint.

BACKGROUND

As companies extract more and more data from customers, a customer'sexposure to data leaks, hacking, identity theft, and other riskscontinues to grow. However, customers may not be aware of these risksassociated with providing their data to these companies.

SUMMARY

In one aspect, a computer-implemented method of automaticallycontrolling a user's data footprint is provided. The method comprises:analyzing, by a processor, data associated with a user to determine anaction the user is preparing to take; identifying, by a processor, basedon the analysis, a potential risk associated with the action the user ispreparing to take; and providing, by a processor, to the user, anotification indicating the potential risk associated with the actionthe user is preparing to take.

In another aspect, a computer system for automatically controlling auser's data footprint is provided. The computer system comprises one ormore processors and one or more memories storing instructions. Theinstructions, when executed by the one or more processors, cause thecomputer system to: analyze data associated with a user to determine anaction the user is preparing to take; identify, based on the analysis, apotential risk associated with the action the user is preparing to take;and provide, to the user, a notification indicating the potential riskassociated with the action the user is preparing to take.

In still another aspect, a computer-readable storage medium havingstored thereon a set of instructions for automatically controlling auser's data footprint is provided. The instructions are executable by aprocessor, and comprise instructions for analyzing data associated witha user to determine an action the user is preparing to take;identifying, based on the analysis, a potential risk associated with theaction the user is preparing to take; and providing, to the user, anotification indicating the potential risk associated with the actionthe user is preparing to take.

BRIEF DESCRIPTION OF THE DRAWINGS

FIG. 1 illustrates an exemplary computer system for automaticallycontrolling a user's data footprint, in accordance with someembodiments.

FIGS. 2A, 2B, and 2C illustrate several exemplary user interfacedisplays, in accordance with some embodiments.

FIG. 3 illustrates a flow diagram of an exemplary computer-implementedmethod of automatically controlling a user's data footprint, inaccordance with some embodiments.

DETAILED DESCRIPTION

As companies extract more and more data from customers, a customer'sexposure to data leaks, hacking, identity theft, and other riskscontinues to grow. However, customers may not be aware of these risksassociated with providing their data to these companies.

Systems and methods of automatically controlling a user's data footprintare provided herein. A software-as-agent solution (i.e., a data agent)can act as a protective layer for user data by monitoring privacypolicies and the user's continuing data exhaust, allowing users tocontrol their data footprints automatically. In particular, the softwareagent may be configured to analyze a user's digital information toidentify potential risks associated with actions a user has taken or ispreparing to take.

For example, if a user visits a website and is prompted to enter his orher social security number, credit card information, or other sensitiveinformation, the software agent may analyze the safety of the website,e.g., based on previous user complaints, publicized hacking incidents,etc., and indicate potential data security risks to the user. As anotherexample, if a user is presented with a set of terms and conditions toread in order to use a website or a software, the software agent mayanalyze the terms and conditions using word recognition to flagpotentially unsafe or unfavorable provisions within the terms andconditions for the user. In some instances, the software agent mayanalyze physical and/or property risks in addition to privacy risks. Forexample, the software agent may access email and/or calendar dataassociated with the user to detect potentially dangerous activities inwhich a user plans to engage—e.g., the data agent may detect that theuser has purchased skydiving tickets, or may detect a calendar entryabout a whitewater rafting trip. Based on these detections, the softwareagent may provide safety information and/or risk information related tothese activities, and/or recommend precautionary steps for mitigatingthe risks associated with these activities.

Referring now to FIG. 1 , an exemplary computer system 100 forautomatically controlling a user's data footprint is illustrated, inaccordance with some embodiments. The high-level architectureillustrated in FIG. 1 may include both hardware and softwareapplications, as well as various data communications channels forcommunicating data between the various hardware and software components,as is described below. As shown in FIG. 1 , a user computing device 102,such as, e.g., a mobile device, a laptop, a personal computer, or anyother computing device associated with a user, may communicate with aserver 104 via a network 106.

The user computing device 102 may include a user interface 107 and acontroller 108. The user interface 109 may display or presentinformation to users. For example, the user interface 109 may display aweb browser, as well as notifications from other applications such as acalendar application, a messaging application, an email application,etc. Moreover, the user interface 109 may display a notification of apotential risk associated with an action the user is preparing to take(e.g., as shown in FIGS. 2A, 2B, and 2C). The controller 108 that mayfurther include one or more program memories 110, one or more processors112 (which may be, e.g., microcontrollers and/or microprocessors), oneor more memories (RAMs) 114, and an input/output (I/O) circuit 116, allof which may be interconnected via an address/data bus. Although the I/Ocircuit 116 is shown as a single block, it should be appreciated thatthe I/O circuit 116 may include a number of different types of I/Ocircuits. The program memory 110 and RAM 114 may be implemented assemiconductor memories, magnetically readable memories, opticallyreadable memories, or biologically readable memories, for example.Generally speaking, the program memory 110 and/or the RAM 114 mayrespectively include one or more non-transitory, computer-readablestorage media. The controller 108 may also be operatively connected tothe network 106 via a link.

The user computing device 102 may further include a number of varioussoftware applications 118, 120, 122, 124 stored in the program memory110. Generally speaking, the applications 118, 120, 122, 124 may includea web browser application, an email application, a calendar application,and/or a messaging application. Furthermore, the applications 118, 120,122, 124 may include applications for transmitting data to the server104 and/or receiving data from the server 104, e.g., via the network106. Moreover, the applications 118, 120, 122, 124 may include anapplication configured to perform one or more functions related to,inter alia, analyzing data associated with a user (which may in someinstances be obtained from the other applications, such as the webbrowser application, email application, calendar application, messagingapplication, etc.) to determine an action the user is preparing to take;identifying, based on the analysis, a potential risk associated with theaction the user is preparing to take; providing, to the user, anotification indicating the potential risk associated with the actionthe user is preparing to take, etc. In some instances, one or more ofthe applications 118, 120, 122, 124 may perform at least a portion ofany of the method 300 shown in FIG. 3 . The various softwareapplications 118, 120, 122, 124 may be executed on the same processor112 or on different processors. Although four software applications 118,120, 122, 124 are shown in FIG. 1 , it will be understood that there maybe any number of software applications 118, 120, 122, 124. Further, twoor more of the various applications 118, 120, 122, 124 may be integratedas an integral application, if desired. Additionally, it should beappreciated that in some embodiments, the user computing device 102 maybe configured to perform any suitable portion of the processingfunctions described as being performed by the server 104, and viceversa.

As shown in FIG. 1 , the server 104 may include a controller 126 thatmay be operatively connected to the one or more databases 128 via alink, which may be a local or a remote link. The one or more databases128 may be adapted to store data related to automatically controlling auser's data footprint. For instance, the one or more databases 128 maystore, inter alia, data related to actions associated with variousrisks, companies or other third parties associated with various types ofrisks, words and phrases indicative of actions a user is preparing totake and/or potential risks associated with those actions, websitesource code indicative of actions a user is preparing to take and/orpotential risks of those actions, suggestions for mitigating varioustypes of risk, etc. It should be noted that, while not shown, additionaldatabases may be linked to the controller 126. Additionally, separatedatabases may be used for various types of information, in someinstances, and additional databases (not shown) may be communicativelyconnected to the server 104 via the network 106.

The controller 126 may include one or more program memories 130, one ormore processors 132 (which may be, e.g., microcontrollers and/ormicroprocessors), one or more random-access memories (RAMs) 134, and aninput/output (I/O) circuit 136, all of which may be interconnected viaan address/data bus. Although the I/O circuit 136 is shown as a singleblock, it should be appreciated that the I/O circuit 136 may include anumber of different types of I/O circuits. The program memory 130 andRAM 134 may be implemented as semiconductor memories, magneticallyreadable memories, optically readable memories, or biologically readablememories, for example. Generally speaking, the program memory 130 and/orthe RAM 134 may respectively include one or more non-transitory,computer-readable storage media. The controller 126 may also beoperatively connected to the network 106 via a link.

The server 104 may further include a number of various softwareapplications 138, 140, 142, 144 stored in the program memory 130.Generally speaking, the applications may perform one or more functionsrelated to, inter alia, transmitting data to the user computing device102, receiving data from the user computing device 102, accessing one ormore databases 128, etc. Moreover, one or more of the applications 138,140, 142, 144 may perform any suitable portion of the method 300 shownin FIG. 3 . The various software applications 138, 140, 142, 144 may beexecuted on the same processor 132 or on different processors. Althoughfour software applications 138, 140, 142, 144 are shown in FIG. 1 , itwill be understood that there may be any number of software applications138, 140, 142, 144. Further, two or more of the various applications138, 140, 142, 144 may be integrated as an integral application, ifdesired.

It should be appreciated that although the server 104 is illustrated asa single device in FIG. 1 , one or more portions of the server 104 maybe implemented as one or more storage devices that are physicallyco-located with the server 104, or as one or more storage devicesutilizing different storage locations as a shared database structure(e.g. cloud storage). In some embodiments, the server 104 may beconfigured to perform any suitable portion of the processing functionsremotely that have been described as being performed by the usercomputing device 102.

Turning now to FIGS. 2A, 2B, and 2C, several exemplary user interfacedisplays are illustrated, in accordance with some embodiments. As shownin FIG. 2A, a user may be notified of a potential risk associated withan action the user is preparing to take. For example, as shown in FIG.2A, a user may be notified of a data security risk associated with athird party company to which the user is preparing to provide personalinformation, such as his or her name, address, credit card number, etc.Moreover, as shown in 2A, a user may select an option to learn moreinformation about the potential risk. FIG. 2B depicts another example ofa notification a user may receive, indicating a potential riskassociated with an action the user is preparing to take. As shown inFIG. 2B, a user may be notified of a data privacy risk associated with acontract the user is preparing to sign. As shown in FIG. 2B, a user mayreceive a notification including a suggestion for mitigating the dataprivacy risk associated with a contract from ABC Company. Specifically,the notification includes a suggestion of another company with moreuser-friendly terms of service. Moreover, as shown in 2B, a user mayselect an option to learn more information about the potential risk. Asshown in FIG. 2C, a user may be notified of a physical safety riskassociated with an activity the user is preparing to partake in, such asskydiving, as indicated by a digital calendar associated with the user.The notification may include a suggestion for mitigating the risk, e.g.,a suggestion to wear a helmet. Moreover, as shown in 2C, a user mayselect an option to learn more information about the potential risk. Ofcourse, the notifications shown in FIGS. 2A, 2B, and 2C are merelyexamples of user interface displays that may be provided in accordancewith some embodiments. Additional or alternative user interface displaysmay be provided in various embodiments.

Turning now to FIG. 3 , a flow diagram of an exemplarycomputer-implemented method 300 of automatically controlling a user'sdata footprint, in accordance with some embodiments. The method 300 canbe implemented as a set of instructions stored on a computer-readablememory and executable on one or more processors.

Data associated with a user may be analyzed (block 302) to determine anaction that the user is preparing to take. As one example, dataassociated with the user may be obtained from the user's web browser andanalyzed to determine an action the user is preparing to take. This datamay include indications of websites that the user is viewing or loading,or otherwise accessing, and the contents of these websites. Moreover,analyzing the data associated with a website may include analyzing textand images visible to a user (in some instances, via optical characterrecognition analysis) as well as analyzing source code associated withthe website.

For instance, the user may view or load, or otherwise access a websitethat includes a form for providing user information to a third party,such as a bank, a company, or a government organization. This form maybe identified based on text that is visible to the user on the website(e.g., “checkout”, “user information”, credit card”, etc.) and/or sourcecode associated with the website (e.g., source code for a fillableform). Accordingly, based on the user accessing a website that includesa form for providing user information to a third party, the method 300may determine that the user is preparing to provide user information tothe third party.

For example, the user may be shopping online and may access a retailer'swebsite prompting the user to provide information such as the user'sfull name, the user's home address, the user's billing address, and theuser's credit card number, as well as a PIN number or other securitynumber associated with the credit card. Based on an analysis of thewebsite text (e.g., words and phrases such as “billing address,” “creditcard number”, “security code,” “home address,” etc.) as well as sourcecode indicating the origin of the website, and the fields for the userto enter information near the detected text, the method 300 maydetermine that the user is preparing to provide his or her billingaddress, credit card number, security code, etc. to the retailer. Asanother example, the user may be applying online for a job at a certaincompany, and may load a company website prompting the user to providehis or her social security number, phone number, and address. Based onan analysis of the website text (e.g., words and phrases such as “socialsecurity number,” “phone number,” “address,” etc.) as well as sourcecode indicating the origin of the website, and the fields for the userto enter information near the detected text, the method 300 maydetermine that the user is preparing to provide his or her socialsecurity number, phone number, address, etc. to the company.

As still another example, the user may be using an online bankingservice, and may view a website prompting the user to provide a routingnumber or banking account number. Based on an analysis of the websitetext (e.g., words and phrases such as “routing number,” “banking accountnumber,” etc.) as well as source code indicating the origin of thewebsite, and the fields for the user to enter information near thedetected text, the method 300 may determine that the user is preparingto provide his or her routing number, banking account number, etc. tothe online banking service. Additionally, the user may be accessing awebsite associated with a government agency, and may be prompted toprovide information such as the user's passport number, driver's licensenumber, and/or social security number. Based on an analysis of thewebsite text (e.g., words and phrases such as “passport number,”“driver's license number,” “social security number” etc.) as well assource code indicating the origin of the website, and the fields for theuser to enter information near the detected text, the method 300 maydetermine that the user is preparing to provide his or her passportnumber, driver's license number, social security number, etc., to thegovernment agency.

In various examples, the identity information the user is preparing toprovide to the third party may include, e.g., the user's full nameand/or the full name of a family member, the user's phone number, theuser's credit card number, the user's bank account number, the user'ssocial security number or other government-issued identification number(such as, e.g., a driver's license number, a passport number, etc.), theuser's student identification number, the user's home address, theuser's email address, the user's password or PIN number, an answer to asecurity question associated with the user, etc.

In another example, the user may view or load, or otherwise access awebsite that includes a digital contract and/or agreement, as well as aprompt for the user to sign the contract or otherwise agree to its termsand/or conditions. This digital contract and/or agreement may beidentified based on text that is visible to the user on the website(e.g., contract terms and conditions) and/or as source code associatedwith the website (e.g., source code indicating a field configured toreceive an acceptance of contract terms and/or conditions). to determinethat the user is preparing to accept one or more of the terms and/orconditions. Accordingly, based on the analysis indicating that the useris accessing a website that includes a digital contract and/oragreement, the method 300 may determine that the user is preparing tosign the digital contract and/or agreement.

Moreover, in some examples, analyzing the data associated with the userto determine an action that the user is preparing to take may includeanalyzing email data, messaging data, and/or calendar data associatedwith the user. This email data, messaging data, and/or calendar data maybe obtained, e.g., via applications of a computing device (such as apersonal computer or a mobile device) associated with the user. Theanalysis may include analyzing words or phrases within the email data,messaging data, and/or calendar data associated with the user toidentify words or phrases indicative of an action that the user ispreparing to take. For instance, an email may include a confirmationfrom an airline. Words and phrases from the email such as “flight” and“airline” and “airport” and the destination may indicate that the useris preparing to take a flight to a certain location. As another example,texts messages sent and received by the user may include a confirmationof plans the user has made with friends. Words and phrases such as thename of a restaurant or bar (e.g., “Joe's Steakhouse”), and a date ortime (e.g., “7 tonight”) may indicate that the user is planning to go toa certain bar or restaurant at a certain date or time. As still anotherexample, a calendar entry may indicate an event, appointment, oractivity the user is preparing to attend at a certain date or time.Words or phrases such as the name of the event, appointment, or activity(e.g., “Company Lunch Meeting,” “Doctor's Appointment”, “Kayaking trip”,etc.) and the date or time (e.g., 5:30 on Thursday the 1^(st)) mayindicate that the user is planning to go to a particular event,appointment, or activity at a certain time.

Based on the analysis, a potential risk associated with the action theuser is preparing to take may be identified (block 304). For example, apotential risk associated with the action the user is preparing to takemay be, e.g., a data security risk, a data privacy risk, a physicalrisk, a risk of damage to property, a financial risk, etc.

In an example in which the user views, loads, or otherwise accesses awebsite that includes a form for providing user information to a thirdparty, identifying the potential risks associated with actions user ispreparing to take may include obtaining historical data associated withthe third party. For instance, historical data associated with the thirdparty may include news reports associated with the third party, as wellas better business bureau reports or other accreditation reportsassociated with the third party. Accordingly, potential risks associatedwith the action the user is preparing to take (providing the third partywith personal information) may be identified based on this historicaldata. For instance, the historical data associated with the third partymay indicate a data security breach associated with the third party(e.g., a publicized hacking incident, a data privacy incident, etc.). Inthat case, the potential risk associated with providing information tothe third party may include the risk of the user's data being stolen,leaked, or otherwise used in a way the user does not intend the data tobe used.

As another example, identifying the potential risks associated withactions a user is preparing to take may include comparing the webpresence of the third party with the website that the user is viewing,loading, or otherwise accessing. For example, if the third party's webpresence mainly includes references to “www.company.com,” but the useris accessing a website with the URL: “www.company.biz,” a potential riskmay be identified. Namely, in that case, the potential risk may be thatthe third party may not be the company the user believes that it is.

In some examples, identifying the potential risk associated with theaction the user is preparing to take may include detecting one or morewords or phrases in a digital contract the user is preparing to sign,and identifying a potential risk associated with signing the contractbased on the detected words or phrases. For example, a digital contractor agreement presented by a third party may include words or phrasesindicating that, by signing, the user agrees to allow the third partyaccess to certain customer data or certain customer mobile deviceapplications. Consequently, the potential risk associated with signingthe contract may be that the user does not realize that he or she isagreeing to allow the third party to access his or her data in this way.As another example, a digital contract or agreement presented by a thirdparty may include words or phrases that are excessively favorable to thethird party while unfavorable to the customer. Consequently, thepotential risk associated with signing the contract may be a potentiallyrisk of agreeing to potentially unfavorable terms and conditions.

Moreover, in some examples, identifying the potential risk associatedwith the action the user is preparing to take may include detecting oneor more words or phrases in email, messaging, or calendar data, andidentifying a potential risk associated with the action the user ispreparing to take based on the detected words or phrases. For example,certain words or phrases in an email from a third party may indicate arisk of “phishing.” As another example, certain words or phrases inemail, messaging, or calendar data may indicate that the user isplanning an activity that entails a personal risk. For example, acalendar event for “skydiving” may indicate that a user is planning toskydive. Accordingly, the risk associated with the action the user ispreparing to take may be a physical risk (e.g., based on accident ratesfor activities like skydiving).

A notification may be provided (306) to the user, indicating thepotential risk associated with the action the user is preparing to take.In some instances, the notification may be a warning about the potentialrisk. Moreover, in some instances, the notification may include one ormore suggestions for mitigating the potential risk associated with theaction the user is preparing to take.

For example, the notification may indicate that a third party companythat the user is preparing to do business with has recently been hacked.In this example, the notification may additionally include a suggestionof a third party company that sells the same item the user is preparingto buy, with no historical data privacy breaches. As another example,the notification may include highlighting terms and/or conditions of acontract or agreement that may be unfavorable to the user. Thenotification may further include an explanation of these terms.Similarly, in this example, the notification may additionally include asuggestion of a third party that provides the same service or productwithout these unfavorable contract terms. As still another example, thenotification may include statistics of risks associated with an actionthe user is preparing to take. For example, the notification may includestatistics of risks associated with skydiving. In this example, thenotification may further include a recommendation to purchase safetyequipment to mitigate these risks.

With the foregoing, an insurance customer may opt-in to a rewards,insurance discount, or other type of program. After the insurancecustomer provides their affirmative consent, an insurance providerremote server may collect data from the customer's mobile device, smarthome controller, or other smart devices—such as with the customer'spermission or affirmative consent. The data collected may be related toinsured assets before (and/or after) an insurance-related event,including those events discussed elsewhere herein. In return, riskaverse insureds may receive discounts or insurance cost savings relatedto home, renters, personal articles, auto, and other types of insurancefrom the insurance provider.

In one aspect, data, including the types of data discussed elsewhereherein, may be collected or received by an insurance provider remoteserver, such as via direct or indirect wireless communication or datatransmission from a smart home controller, mobile device, or othercustomer computing device, after a customer affirmatively consents orotherwise opts-in to an insurance discount, reward, or other program.The insurance provider may then analyze the data received with thecustomer's permission to provide benefits to the customer. As a result,risk averse customers may receive insurance discounts or other insurancecost savings based upon data that reflects low risk behavior and/ortechnology that mitigates or prevents risk to (i) insured assets, suchas homes, personal belongings, or vehicles, and/or (ii) home orapartment occupants.

Although the foregoing text sets forth a detailed description ofnumerous different embodiments, it should be understood that the legalscope of the invention may be defined by the words of the claims setforth at the end of this patent. The detailed description is to beconstrued as exemplary only and does not describe every possibleembodiment, as describing every possible embodiment would beimpractical, if not impossible. One could implement numerous alternateembodiments, using either current technology or technology developedafter the filing date of this patent, which would still fall within thescope of the claims.

Throughout this specification, plural instances may implementcomponents, operations, or structures described as a single instance.Although individual operations of one or more methods are illustratedand described as separate operations, one or more of the individualoperations may be performed concurrently, and nothing requires that theoperations be performed in the order illustrated. Structures andfunctionality presented as separate components in example configurationsmay be implemented as a combined structure or component. Similarly,structures and functionality presented as a single component may beimplemented as separate components. These and other variations,modifications, additions, and improvements fall within the scope of thesubject matter herein.

Additionally, certain embodiments are described herein as includinglogic or a number of routines, subroutines, applications, orinstructions. These may constitute either software (e.g., code embodiedon a non-transitory, machine-readable medium) or hardware. In hardware,the routines, etc., are tangible units capable of performing certainoperations and may be configured or arranged in a certain manner. Inexample embodiments, one or more computer systems (e.g., a standalone,client or server computer system) or one or more hardware modules of acomputer system (e.g., a processor or a group of processors) may beconfigured by software (e.g., an application or application portion) asa hardware module that operates to perform certain operations asdescribed herein.

In various embodiments, a hardware module may be implementedmechanically or electronically. For example, a hardware module maycomprise dedicated circuitry or logic that may be permanently configured(e.g., as a special-purpose processor, such as a field programmable gatearray (FPGA) or an application-specific integrated circuit (ASIC)) toperform certain operations. A hardware module may also compriseprogrammable logic or circuitry (e.g., as encompassed within ageneral-purpose processor or other programmable processor) that may betemporarily configured by software to perform certain operations. Itwill be appreciated that the decision to implement a hardware modulemechanically, in dedicated and permanently configured circuitry, or intemporarily configured circuitry (e.g., configured by software) may bedriven by cost and time considerations.

Accordingly, the term “hardware module” should be understood toencompass a tangible entity, be that an entity that is physicallyconstructed, permanently configured (e.g., hardwired), or temporarilyconfigured (e.g., programmed) to operate in a certain manner or toperform certain operations described herein. Considering embodiments inwhich hardware modules are temporarily configured (e.g., programmed),each of the hardware modules need not be configured or instantiated atany one instance in time. For example, where the hardware modulescomprise a general-purpose processor configured using software, thegeneral-purpose processor may be configured as respective differenthardware modules at different times. Software may accordingly configurea processor, for example, to constitute a particular hardware module atone instance of time and to constitute a different hardware module at adifferent instance of time.

Hardware modules may provide information to, and receive informationfrom, other hardware modules. Accordingly, the described hardwaremodules may be regarded as being communicatively coupled. Where multipleof such hardware modules exist contemporaneously, communications may beachieved through signal transmission (e.g., over appropriate circuitsand buses) that connect the hardware modules. In embodiments in whichmultiple hardware modules are configured or instantiated at differenttimes, communications between such hardware modules may be achieved, forexample, through the storage and retrieval of information in memorystructures to which the multiple hardware modules have access. Forexample, one hardware module may perform an operation and store theoutput of that operation in a memory device to which it may becommunicatively coupled. A further hardware module may then, at a latertime, access the memory device to retrieve and process the storedoutput. Hardware modules may also initiate communications with input oroutput devices, and may operate on a resource (e.g., a collection ofinformation).

The various operations of example methods described herein may beperformed, at least partially, by one or more processors that aretemporarily configured (e.g., by software) or permanently configured toperform the relevant operations. Whether temporarily or permanentlyconfigured, such processors may constitute processor-implemented modulesthat operate to perform one or more operations or functions. The modulesreferred to herein may, in some example embodiments, compriseprocessor-implemented modules.

Similarly, the methods or routines described herein may be at leastpartially processor-implemented. For example, at least some of theoperations of a method may be performed by one or more processors orprocessor-implemented hardware modules. The performance of certain ofthe operations may be distributed among the one or more processors, notonly residing within a single machine, but deployed across a number ofmachines. In some example embodiments, the processor or processors maybe located in a single location (e.g., within an office environment, oras a server farm), while in other embodiments the processors may bedistributed across a number of locations.

Unless specifically stated otherwise, discussions herein using wordssuch as “processing,” “computing,” “calculating,” “determining,”“presenting,” “displaying,” or the like may refer to actions orprocesses of a machine (e.g., a computer) that manipulates or transformsdata represented as physical (e.g., electronic, magnetic, or optical)quantities within one or more memories (e.g., volatile memory,non-volatile memory, or a combination thereof), registers, or othermachine components that receive, store, transmit, or displayinformation.

As used herein any reference to “one embodiment” or “an embodiment”means that a particular element, feature, structure, or characteristicdescribed in connection with the embodiment may be included in at leastone embodiment. The appearances of the phrase “in one embodiment” invarious places in the specification are not necessarily all referring tothe same embodiment.

As used herein, the terms “comprises,” “comprising,” “may include,”“including,” “has,” “having” or any other variation thereof, areintended to cover a non-exclusive inclusion. For example, a process,method, article, or apparatus that comprises a list of elements is notnecessarily limited to only those elements but may include otherelements not expressly listed or inherent to such process, method,article, or apparatus. Further, unless expressly stated to the contrary,“or” refers to an inclusive or and not to an exclusive or. For example,a condition A or B is satisfied by any one of the following: A is true(or present) and B is false (or not present), A is false (or notpresent) and B is true (or present), and both A and B are true (orpresent).

In addition, use of the “a” or “an” are employed to describe elementsand components of the embodiments herein. This is done merely forconvenience and to give a general sense of the description. Thisdescription, and the claims that follow, should be read to include oneor at least one and the singular also may include the plural unless itis obvious that it is meant otherwise.

This detailed description is to be construed as examples and does notdescribe every possible embodiment, as describing every possibleembodiment would be impractical, if not impossible. One could implementnumerous alternate embodiments, using either current technology ortechnology developed after the filing date of this application.

The patent claims at the end of this patent application are not intendedto be construed under 35 U.S.C. § 112(f) unless traditionalmeans-plus-function language is expressly recited, such as “means for”or “step for” language being explicitly recited in the claim(s). Thesystems and methods described herein are directed to an improvement tocomputer functionality, and improve the functioning of conventionalcomputers.

1-20. (canceled)
 21. A computer-implemented method comprising:analyzing, by a processor, data associated with a user to determine anaction that the user is preparing to take, the data comprising text dataassociated with the user; detecting, by the processor, one or more wordsor phrases in the text data associated with the user; identifying, bythe processor, a potential risk associated with the action that the useris preparing to take based upon analyzing the data; and providing, bythe processor, a notification, the notification comprising an indicationindicating the potential risk, wherein the identifying, by theprocessor, a potential risk associated with the action that the user ispreparing to take comprises identifying the potential risk based uponthe detected one or more words or phrases in the text data.
 22. Thecomputer-implemented method of claim 21, wherein the identifying, by theprocessor, a potential risk associated with the action that the user ispreparing to take further comprises: obtaining, by the processor,historical data associated with a second entity related to the action;analyzing, by the processor, the historical data associated with thesecond entity to identify one or more past data security breaches; andidentifying, by the processor, the potential risk based upon the one ormore past data security breaches.
 23. The computer-implemented method ofclaim 22, further comprising: generating a suggestion to mitigate thepotential risk; wherein the notification further comprises thesuggestions.
 24. The computer-implemented method of claim 23, whereinthe generating a suggestion to mitigate the potential risk comprises:identifying a third entity related to the action that the user ispreparing to take; wherein the suggestion includes informationassociated with the third entity.
 25. The computer-implemented method ofclaim 21, wherein the data associated with the user further comprises adigital contract including at least one selected from a group consistingof contract terms, contract conditions and a field configured to receivean acceptance to at least a part of the digital contract.
 26. Thecomputer-implemented method of claim 24, wherein the identifying, by theprocessor, a potential risk associated with the action that the user ispreparing to take further comprises: detecting one or more words orphrases in the digital contract; and identifying the potential riskassociated with the action that the user is preparing to take based uponthe detected one or more words or phrases in the digital contract;wherein the notification includes the one or more detected words orphrases.
 27. The computer-implemented method of claim 21, wherein thetext data associated with the user comprises communication dataassociated with the user, and wherein the communication data includes atleast one selected from a group consisting of email data, messagingdata, and calendar data.
 28. The computer-implemented method of claim21, wherein the potential risk associated with the action that the useris preparing to take includes at least selected from a group consistingof a data security risk, a data privacy risk, a physical risk, a risk ofdamage to property, and a financial risk.
 29. A computer systemcomprising: one or more memories storing instructions; and one or moreprocessors configured to execute the instructions to perform operationscomprising: analyzing data associated with a user to determine an actionthat the user is preparing to take, the data associated with the usercomprising a digital contract; detecting one or more words or phrases inthe digital contract; identifying a potential risk associated with theaction that the user is preparing to take based upon analyzing the data,wherein the potential risk is identified based at least in part upon thedetected one or more words or phrases in the digital contract; andproviding a notification, the notification comprising an indicationindicating the potential risk.
 30. The computer system of claim 29,wherein the operations further comprise: obtaining historical dataassociated with a second entity related to the action; analyzing thehistorical data associated with the second entity to identify one ormore past data security breaches; and identifying the potential riskbased upon the one or more past data security breaches.
 31. The computersystem of claim 29, wherein the digital contract includes at least oneselected from a group consisting of contract terms, contract conditions,and a field configured to receive an acceptance to at least a part ofthe digital contract.
 32. The computer system of claim 29, wherein theoperations further comprise: generating a suggestion to mitigate thepotential risk; wherein the notification further comprises thesuggestion.
 33. The computer system of claim 29, wherein the generatinga suggestion to mitigate the potential risk comprises: identifying athird entity related to the action that the user is preparing to take;wherein the suggestion includes information associated with the thirdentity.
 34. The computer system of claim 29, wherein the potential riskassociated with the action that the user is preparing to take includesat least selected from a group consisting of a data security risk, adata privacy risks, a physical risk, a risk of damage to property, and afinancial risk.
 35. A computer system comprising: one or more memoriesstoring instructions; and one or more processors configured to executethe instructions to perform operations comprising: analyzing dataassociated with a user to determine an action that the user is preparingto take, the data associated with the user comprising communication dataassociated with the user; detecting one or more words or phrases in thecommunication data; identifying a potential risk associated with theaction that the user is preparing to take based upon analyzing the data,wherein the potential risk is identified based at least in part upon thedetected one or more words or phrases in the communication data; andproviding a notification, the notification comprising an indicationindicating the potential risk.
 36. The computer system of claim 36,wherein the operations further comprise: obtaining historical dataassociated with a second entity; analyzing the historical dataassociated with the second entity to identify one or more past datasecurity breaches; and identifying the potential risk based upon the oneor more past data security breaches.
 37. The computer system of claim35, wherein the data associated with the user further comprises adigital contract, and wherein the digital contract includes at least oneselected from a group consisting of contract terms, contract conditions,and a field configured to receive an acceptance to at least a part ofthe digital contract.
 38. The computer system of claim 38, wherein theoperations further comprise: generating a suggestion to mitigate thepotential risk; wherein the notification further comprises thesuggestion.
 39. The computer system of claim 38, wherein the generatinga suggestion to mitigate the potential risk comprises: identifying athird entity related to the action that the user is preparing to take;wherein the suggestion includes information associated with the thirdentity.
 40. The computer system of claim 35, wherein the potential riskassociated with the action that the user is preparing to take includesat least selected from a group consisting of a data security risk, adata privacy risks, a physical risk, a risk of damage to property, and afinancial risk.